CVE-2006-0618

Опубликовано: 09 фев. 2006

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

Format string vulnerability in fontsleuth in QNX Neutrino RTOS 6.3.0 allows local users to execute arbitrary code via format string specifiers in the zeroth argument (program name).

Ссылки

http://secunia.com/advisories/18750
Vendor Advisory
http://securitytracker.com/id?1015599
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=380
Vendor Advisory
http://www.osvdb.org/22966
http://www.securityfocus.com/bid/16539
http://www.vupen.com/english/advisories/2006/0474
https://exchange.xforce.ibmcloud.com/vulnerabilities/24559
http://secunia.com/advisories/18750
Vendor Advisory
http://securitytracker.com/id?1015599
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=380
Vendor Advisory
http://www.osvdb.org/22966
http://www.securityfocus.com/bid/16539
http://www.vupen.com/english/advisories/2006/0474
https://exchange.xforce.ibmcloud.com/vulnerabilities/24559

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:qnx:neutrino_rtos:6.3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 34%

0.00136

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-cmgw-2rmf-7v28

github

почти 4 года назад